Sourced from class-validator's changelog.
0.14.0 (2022-12-09)
Added
- add
@IsTimeZone
decorator to check if given string is valid IANA time zone- add
@IsISO4217CurrencyCode
decorator to check if the string is an ISO 4217 currency code- add
@IsStrongPassword
decorator to check if given password matches specific complexity criteria- add
@IsBase58
decorator to check if a string is base58 encoded- add
@IsTaxId
decorator to check if a given string is a valid tax ID in a given locale- add support for passing function as date generator in
@MinDate
and@MaxDate
decorators- add option to print constraint error message instead of constraint type in validation error
- improve decorator metadata lookup performance
- return possible values in error message for
@IsEnum
decoratorFixed
- re-added
@types/validator
as dependency- fix error generation when using
@NestedValidation
- pass validation options correctly to validator in
@IsDateString
decorator- support passing
Symbol
as parameter in error message generation- specify supported locales for
@IsAlphanumeric
decorator- correctly assign decorator name in metadata instead of loosing it
- fix various spelling errors in documentation
- fix various spelling errors and inconsistencies in JSDoc for decorators
Changed
- enable
forbidUnknownValues
option by default- remove documentation about deprecated schema based validation and added warning
- update warning message logged about missing decorator metadata
- update
libphonenumber-js
to^1.10.14
from^1.9.43
- update various dev-dependencies
BREAKING CHANGES
forbidUnknownValues
option is enabled by defaultFrom this release the
forbidUnknownValues
is enabled by default. This is the desired behavior for majority of use-cases, but this change may break validation for some. The two scenarios that results in failed validation:
- when attempting to validate a class instance without metadata for it
- when using group validation and the specified validation group results in zero validation applied
The old behavior can be restored via specifying
forbidUnknownValues: false
option when calling the validate functions.For more details see [PR #1798](typestack/class-validator#1798) and #1422 (comment).
@NestedValidation
decorator correctly assigns validation errorsUntil now the errors from a nested validation in some cases were incorrectly assigned
... (truncated)
5f0d424
merge: release 0.14.0 (#1841)e3d0708
build: bump version to 0.14.0ad76890
docs: add changelog for 0.14.09a775c5
build(deps-dev): bump @types/node
from 18.11.11 to
18.11.12 (#1840)53bc9f6
build(deps-dev): bump @typescript-eslint/eslint-plugin
(#1837)d9b4072
build(deps-dev): bump @typescript-eslint/parser
from
5.45.1 to 5.46.0 (#1838)f993e9e
build(deps-dev): bump typescript from 4.9.3 to 4.9.4 (#1835)ad1a41d
build(deps-dev): bump @rollup/plugin-commonjs
from 23.0.3
to 23.0.4 (#1836)42b4f7f
build(deps-dev): bump prettier from 2.8.0 to 2.8.1 (#1834)0c986d4
build(deps-dev): bump @types/node
from 18.11.10 to
18.11.11 (#1833)Sourced from mysql2's releases.
v3.9.4
3.9.4 (2024-04-09)
Bug Fixes
- SSL: separate each certificate into an individual item #2542 (63f1055)
- security: improve supportBigNumbers and bigNumberStrings sanitization (#2572) (74abf9e)
- Fixes a potential RCE attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab
- security: improve results object creation (#2574) (4a964a3)
- Fixes a potential Prototype Pollution attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab
- docs: improve the contribution guidelines (#2552) (8a818ce)
v3.9.3
3.9.3 (2024-03-26)
Bug Fixes
- security: improve cache key formation (#2424) (0d54b0c)
- Fixes a potential parser cache poisoning attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab
- update Amazon RDS SSL CA cert (#2131) (d9dccfd)
v3.9.2
3.9.2 (2024-02-26)
Bug Fixes
- stream: premature close when it is paused (#2416) (7c6bc64)
- types: expose TypeCast types (#2425) (336a7f1)
v3.9.1
3.9.1 (2024-01-29)
Bug Fixes
v3.9.0
3.9.0 (2024-01-26)
Features
v3.8.0
3.8.0 (2024-01-23)
... (truncated)
Sourced from mysql2's changelog.
3.9.4 (2024-04-09)
Bug Fixes
- docs: improve the contribution guidelines (#2552) (8a818ce)
- security: improve results object creation (#2574) (4a964a3)
- security: improve supportBigNumbers and bigNumberStrings sanitization (#2572) (74abf9e)
3.9.3 (2024-03-26)
Bug Fixes
- security: improve cache key formation (#2424) (0d54b0c)
- Fixes a potential parser cache poisoning attack vulnerability reported by Vsevolod Kokorin (Slonser) of Solidlab
- update Amazon RDS SSL CA cert (#2131) (d9dccfd)
3.9.2 (2024-02-26)
Bug Fixes
- stream: premature close when it is paused (#2416) (7c6bc64)
- types: expose TypeCast types (#2425) (336a7f1)
3.9.1 (2024-01-29)
Bug Fixes
3.9.0 (2024-01-26)
Features
3.8.0 (2024-01-23)
Features
Bug Fixes
... (truncated)
cf3fa60
chore(master): release 3.9.4 (#2566)4a964a3
fix(security): improve results object creation (#2574)71115d8
ci: improve parser tests (#2573)74abf9e
fix(security): improve supportBigNumbers and bigNumberStrings
sanitization (#...8a818ce
fix(docs): improve the contribution guidelines (#2552)0f08c7c
build(deps-dev): bump @docusaurus/tsconfig
in /website (#2563)165c4d6
build(deps-dev): bump @docusaurus/eslint-plugin
in
/website (#2564)9b5ed7b
build(deps): bump @docusaurus/preset-classic
in /website
(#2562)096db64
build(deps-dev): bump typescript from 5.4.3 to 5.4.4 (#2561)b91fd16
build(deps-dev): bump tsx from 4.7.1 to 4.7.2 in /website (#2557)Sourced from typeorm's releases.
0.3.13
Bug Fixes
- firstCapital=true not working in camelCase() function (f1330ad)
- handles "query" relation loading strategy for TreeRepositories (#9680) (a11809e), closes #9673
- improve EntityNotFound error message in QueryBuilder.findOneOrFail (#9872) (f7f6817)
- loading tables with fk in sqlite query runner (#9875) (4997da0), closes #9266
- prevent foreign key support during migration batch under sqlite (#9775) (197cc05), closes #9770
- proper default value on generating migration when default value is a function calling [Postgres] (#9830) (bebba05)
- react-native doesn't properly work in ESM projects because of circular dependency (#9765) (099fcd9)
- resolve issues for mssql migration when simple-enum was changed (cb154d4), closes #7785 #9457 #7785 #9457
- resolves issue with mssql column recreation (#9773) (07221a3), closes #9399
- transform values for FindOperators #9381 (#9777) (de1228d), closes #9816
- use forward slashes when normalizing path (#9768) (58fc088), closes #9766
- use object create if entity skip constructor is set (#9831) (a868979)
Features
- add support for json datatype for sqlite (#9744) (4ac8c00)
- add support for STI on EntitySchema (#9834) (bc306fb), closes #9833
- allow type FindOptionsOrderValue for order by object property (#9895) (#9896) (0814970)
- Broadcast identifier for removed related entities (#9913) (f530811)
- leftJoinAndMapOne and innerJoinAndMapOne map result to entity (#9354) (947ffc3)
Sourced from typeorm's changelog.
0.3.13 (2023-04-06)
Bug Fixes
- firstCapital=true not working in camelCase() function (f1330ad)
- handles "query" relation loading strategy for TreeRepositories (#9680) (a11809e), closes #9673
- improve EntityNotFound error message in QueryBuilder.findOneOrFail (#9872) (f7f6817)
- loading tables with fk in sqlite query runner (#9875) (4997da0), closes #9266
- prevent foreign key support during migration batch under sqlite (#9775) (197cc05), closes #9770
- proper default value on generating migration when default value is a function calling [Postgres] (#9830) (bebba05)
- react-native doesn't properly work in ESM projects because of circular dependency (#9765) (099fcd9)
- resolve issues for mssql migration when simple-enum was changed (cb154d4), closes #7785 #9457 #7785 #9457
- resolves issue with mssql column recreation (#9773) (07221a3), closes #9399
- transform values for FindOperators #9381 (#9777) (de1228d), closes #9816
- use forward slashes when normalizing path (#9768) (58fc088), closes #9766
- use object create if entity skip constructor is set (#9831) (a868979)
Features
- add support for json datatype for sqlite (#9744) (4ac8c00)
- add support for STI on EntitySchema (#9834) (bc306fb), closes #9833
- allow type FindOptionsOrderValue for order by object property (#9895) (#9896) (0814970)
- Broadcast identifier for removed related entities (#9913) (f530811)
- leftJoinAndMapOne and innerJoinAndMapOne map result to entity (#9354) (947ffc3)
b3dc656
version bumpf1330ad
fix: firstCapital=true not working in camelCase() functiona11809e
fix: handles "query" relation loading strategy for
TreeRepositories (#9680)947ffc3
feat: leftJoinAndMapOne and innerJoinAndMapOne map result to entity (#9354)de1228d
fix: transform values for FindOperators #9381
(#9777)197cc05
fix: prevent foreign key support during migration batch under sqlite (#9775)4ac8c00
feat: add support for json datatype for sqlite (#9744)a868979
fix: use object create if entity skip constructor is set (#9831)bc306fb
feat: add support for STI on EntitySchema (#9834)97280fc
docs: update migrations docs (#9828)Sourced from graphql's releases.
v16.8.1 (2023-09-19)
Bug Fix 🐞
- #3967 OverlappingFieldsCanBeMergedRule: Fix performance degradation (
@AaronMoat
)Committers: 1
- Aaron Moat(
@AaronMoat
)v16.8.0 (2023-08-14)
New Feature 🚀
- #3950 Support fourfold nested lists (
@gschulze
)Committers: 1
- Gunnar Schulze(
@gschulze
)v16.7.1 (2023-06-22)
:loudspeaker: Big shout out to
@phryneas
, who managed to reproduce this issue and come up with this fix.Bug Fix 🐞
- #3923 instanceOf: workaround bundler issue with
process.env
(@IvanGoncharov
)Committers: 1
- Ivan Goncharov(
@IvanGoncharov
)v16.7.0 (2023-06-21)
New Feature 🚀
- #3887 check "globalThis.process" before accessing it (
@kettanaito
)Bug Fix 🐞
- #3707 Fix crash in node when mixing sync/async resolvers (backport of #3706) (
@chrskrchr
)- #3838 Fix/invalid error propagation custom scalars (backport for 16.x.x) (
@stenreijers
)Committers: 3
- Artem Zakharchenko(
@kettanaito
)- Chris Karcher(
@chrskrchr
)- Sten Reijers(
@stenreijers
)
8a95335
16.8.18f4c64e
OverlappingFieldsCanBeMergedRule: Fix performance degradation (#3967)e4f759d
16.8.0bec1b49
Support fourfold nested lists (#3950)bf6a9f0
16.7.1a08aaee
instanceOf: workaround bundler issue with process.env
(#3923)1519fda
16.7.084bb146
check "globalThis.process" before accessing it (#3887)076972e
Fix/invalid error propagation custom scalars (backport for 16.x.x) (#3838)4a82557
Fix crash in node when mixing sync/async resolvers (backport of #3706)
(#3707)Sourced from axios's releases.
Release v1.6.8
Release notes:
Bug Fixes
- AxiosHeaders: fix AxiosHeaders conversion to an object during config merging (#6243) (2656612)
- import: use named export for EventEmitter; (7320430)
- vulnerability: update follow-redirects to 1.15.6 (#6300) (8786e0f)
Contributors to this release
Release v1.6.7
Release notes:
Bug Fixes
Contributors to this release
Release v1.6.6
Release notes:
Bug Fixes
- fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)
- wrap errors to improve async stack trace (#5987) (123f354)
Contributors to this release
Release v1.6.5
Release notes:
Bug Fixes
- ci: refactor notify action as a job of publish action; (#6176) (0736f95)
- dns: fixed lookup error handling; (#6175) (f4f2b03)
Contributors to this release
... (truncated)
Sourced from axios's changelog.
1.6.8 (2024-03-15)
Bug Fixes
- AxiosHeaders: fix AxiosHeaders conversion to an object during config merging (#6243) (2656612)
- import: use named export for EventEmitter; (7320430)
- vulnerability: update follow-redirects to 1.15.6 (#6300) (8786e0f)
Contributors to this release
1.6.7 (2024-01-25)
Bug Fixes
Contributors to this release
1.6.6 (2024-01-24)
Bug Fixes
- fixed missed dispatchBeforeRedirect argument (#5778) (a1938ff)
- wrap errors to improve async stack trace (#5987) (123f354)
Contributors to this release
1.6.5 (2024-01-05)
Bug Fixes
... (truncated)
ab3f0f9
chore(release): v1.6.8 (#6303)2656612
fix(AxiosHeaders): fix AxiosHeaders conversion to an object during
config mer...7320430
fix(import): use named export for EventEmitter;8786e0f
fix(vulnerability): update follow-redirects to 1.15.6 (#6300)d844227
chore: update and bump deps (#6238)caa0625
docs: update README responseEncoding types (#6194)41c4584
docs: Update README.md to point to current axios version in CDN links
(#6196)bf6974f
chore(ci): add npm tag action; (#6231)a52e4d9
chore(release): v1.6.7 (#6204)2b69888
chore: remove unnecessary check (#6186)Sourced from @nestjs/axios
's
releases.
Release 3.0.2
- Merge pull request #1016 from nestjs/renovate/nest-monorepo (a3f98bf)
- Merge pull request #910 from nestjs/renovate/cimg-node-21.x (c8be5e5)
- chore(deps): update nest monorepo to v10.3.2 (c8c5f81)
- chore: remove reflect-metadata from peer deps (71341b1)
- chore(deps): update typescript-eslint monorepo to v6.21.0 (47977ed)
- chore(deps): update dependency lint-staged to v15.2.2 (c019cd0)
- chore(deps): update dependency prettier to v3.2.5 (6fb30e4)
- chore(deps): update dependency husky to v9.0.10 (c289ef1)
- chore(deps): update dependency
@types/node
to v20.11.16 (a1c0256)- chore(deps): update dependency
@types/jest
to v29.5.12 (ae6c6ae)- chore(deps): update dependency
@types/node
to v20.11.15 (c43eb41)- chore(deps): update dependency
@types/node
to v20.11.14 (e326c14)- chore(deps): update dependency lint-staged to v15.2.1 (cc3ebe7)
- chore(deps): update dependency
@types/node
to v20.11.13 (e5f5930)- chore(deps): update typescript-eslint monorepo to v6.20.0 (b81b772)
- chore(deps): update dependency husky to v9.0.7 (920e5e5)
- chore(deps): update dependency
@types/node
to v20.11.10 (29365c6)- chore(deps): update dependency
@types/node
to v20.11.9 (91d18cb)- chore(deps): update dependency
@types/node
to v20.11.8 (3fbca54)- chore(deps): update dependency
@types/node
to v20.11.7 (225b32d)- chore(deps): update dependency husky to v9.0.6 (3c3f7b0)
- chore(deps): update dependency axios to v1.6.7 (377383f)
- chore(deps): update dependency husky to v9.0.5 (173bb71)
- chore(deps): update commitlint monorepo to v18.6.0 (e1f2d93)
- chore(deps): update dependency husky to v9 (ea27483)
- chore(deps): update dependency axios to v1.6.6 (2d2aa25)
- chore(deps): update dependency
@types/node
to v20.11.6 (2b31fa0)- chore(deps): update nest monorepo to v10.3.1 (4f95abc)
- chore(deps): update dependency release-it to v17.0.3 (3d51f86)
- chore(deps): update typescript-eslint monorepo to v6.19.1 (af62d45)
- chore(deps): update commitlint monorepo to v18.5.0 (363a683)
- chore(deps): update dependency ts-jest to v29.1.2 (82e681d)
- chore(deps): update dependency prettier to v3.2.4 (068b64c)
- chore(deps): update dependency
@types/node
to v20.11.5 (caaeb94)- chore(deps): update dependency prettier to v3.2.3 (4308521)
- chore(deps): update node.js to v21 (019c12f)
- chore(deps): update dependency
@types/node
to v20.11.4 (39e6508)- chore(deps): update dependency
@types/node
to v20.11.3 (1c3e17a)- chore(deps): update typescript-eslint monorepo to v6.19.0 (1178c3e)
- chore(deps): update dependency
@types/node
to v20.11.2 (1cd8779)- chore(deps): update dependency
@types/node
to v20.11.1 (96fdd73)- chore(deps): update dependency prettier to v3.2.2 (a6f70c1)
- chore(deps): update dependency prettier to v3.2.1 (51f62fc)
- chore(deps): update dependency
@types/node
to v20.11.0 (8514b40)- chore(deps): update dependency
@types/node
to v20.10.8 (72983e6)- chore(deps): update typescript-eslint monorepo to v6.18.1 (9a53e67)
- chore(deps): update dependency
@types/node
to v20.10.7 (5c60db2)- chore(deps): update typescript-eslint monorepo to v6.18.0 (de6de0d)
- chore(deps): update dependency axios to v1.6.5 (08a3268)
... (truncated)
Sourced from mssql's releases.
v9.3.2
9.3.2 (2023-09-06)
Bug Fixes
- msnodesqlv8 connection string uses correct instance name (eb3e4d0)
v9.3.0
9.3.0 (2023-09-04)
Features
- add AAD authentication support to connection strings (59aea21)
v9.2.1
9.2.1 (2023-09-05)
Bug Fixes
- msnodesqlv8 connection string uses correct instance name (eb3e4d0)
v9.2.0
9.2.0 (2023-08-28)
Features
- use
@tediousjs/connection-string
to build msnodesqlv8 connection string (71357e2)v9.1.3
9.1.3 (2023-08-08)
Bug Fixes
- quote sqlv8 values (75b74f6)
v9.1.2
What's Changed
- Fix README header for 8.x to 9.x upgrades by
@jordanjennings
in tediousjs/node-mssql#1464- Fix README to show node 12 no longer supported with 9.x by
@jordanjennings
in tediousjs/node-mssql#1465- Bump xml2js and
@azure/keyvault-keys
by@dependabot
in tediousjs/node-mssql#1485- Add automated release workflows by
@dhensby
in tediousjs/node-mssql#1502- chore(ci): prevent dependabot pushes triggering appveyor events by
@dhensby
in tediousjs/node-mssql#1508
... (truncated)
Sourced from mssql's changelog.
v9.3.2 (2023-09-06)
[fix] Fix bug with msnodesqlv8 connection strings ((#1525)[https://redirect.github.com/tediousjs/node-mssql/pull/1525])
v9.3.1 (2023-09-05)
Revoked - contained breaking changes
v9.3.0 (2023-09-04)
[new] Add AAD connection support to connection strings ((#1461)[https://redirect.github.com/tediousjs/node-mssql/pull/1461])
v9.2.1 (2023-09-05)
[fix] Fix bug with msnodesqlv8 connection strings ((#1525)[https://redirect.github.com/tediousjs/node-mssql/pull/1525])
v9.2.0 (2023-08-28)
[new] Use
@tediousjs/connection-string
library to build msnodesqlv8 connection strings ((#1525)[https://redirect.github.com/tediousjs/node-mssql/pull/1525])v9.1.3 (2023-08-08)
[fix] Escape values that are added to the msnodesqlv8 connection string that we construct ((#1479)[https://redirect.github.com/tediousjs/node-mssql/pull/1479])
v9.1.2 (2023-08-01)
[fix] Support more named instance formats (#1520) [refactor] Stop using deprecated regex symbols (#1520)
v9.1.1 (2023-01-19)
[revert] Add support for AAD authentication via connection string ((#1436)[https://redirect.github.com/tediousjs/node-mssql/pull/1436])
v9.1.0 (2023-01-17)
[new] Add support for AAD authentication via connection string ((#1436)[https://redirect.github.com/tediousjs/node-mssql/pull/1436]) [docs] Update express example ((#1433)[https://redirect.github.com/tediousjs/node-mssql/pull/1433])
v9.0.1 (2022-08-18)
[fix] fix regression in requestTimout option not accepting
0
as a value (#1421)v9.0.0 (2022-08-10)
[change] Upgrade tedious to v15 (#1417) [removed] Removed NodeJS 10 & 12 support (#1417)
v8.1.4 (2022-08-18)
[fix] fix regression in requestTimout option not accepting
0
as a value (#1421)
... (truncated)
cb6f8e2
fix: force patch release8a677c8
Merge pull request #1546
from tediousjs/revert-1518-dependabot/npm_and_yarn/t...86d3276
Revert "chore(deps): bump tedious from 15.0.1 to 16.4.0"31bdaca
Merge branch '9.3.x'a702724
Merge remote-tracking branch 'origin/9.2.x' into 9.x53fc9ea
Merge pull request #1543
from partik-mis/1542-fixff05cce
docs: update changelogeb3e4d0
fix: msnodesqlv8 connection string uses correct instance name1e12437
Merge pull request #1518
from tediousjs/dependabot/npm_and_yarn/tedious-16.4.0b5cf976
Merge pull request #1461
from Shin-Aska/feature/aad-integration-conn-stringSourced from jsonwebtoken's changelog.
9.0.0 - 2022-12-21
Breaking changes: See Migration from v8 to v9
Breaking changes
- Removed support for Node versions 11 and below.
- The verify() function no longer accepts unsigned tokens by default. ([834503079514b72264fd13023a3b8d648afd6a16]https://github.com/auth0/node-jsonwebtoken/commit/834503079514b72264fd13023a3b8d648afd6a16)
- RSA key size must be 2048 bits or greater. ([ecdf6cc6073ea13a7e71df5fad043550f08d0fa6]https://github.com/auth0/node-jsonwebtoken/commit/ecdf6cc6073ea13a7e71df5fad043550f08d0fa6)
- Key types must be valid for the signing / verification algorithm
Security fixes
- security: fixes
Arbitrary File Write via verify function
- CVE-2022-23529- security: fixes
Insecure default algorithm in jwt.verify() could lead to signature validation bypass
- CVE-2022-23540- security: fixes
Insecure implementation of key retrieval function could lead to Forgeable Public/Private Tokens from RSA to HMAC
- CVE-2022-23541- security: fixes
Unrestricted key type could lead to legacy keys usage
- CVE-2022-23539
e1fa9dc
Merge pull request from GHSA-8cf7-32gw-wr335eaedbf
chore(ci): remove github test actions job (#861)cd4163e
chore(ci): configure Github Actions jobs for Tests & Security
Scanning (#856)ecdf6cc
fix!: Prevent accidental use of insecure key sizes &
misconfiguration of secr...8345030
fix(sign&verify)!: Remove default none
support from
sign
and verify
met...7e6a86b
Upload OpsLevel YAML (#849)74d5719
docs: update references vercel/ms references (#770)